PT-2025-7981 · Linux+2 · Linux Kernel+2

Xiaoguang Wang

·

Published

2022-03-29

·

Updated

2025-11-18

·

CVE-2022-49053

CVSS v3.1

7.8

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A issue in the Linux kernel has been identified where the tcmu try get data page() function does not properly take a reference count on pages under cmdr lock, potentially leading to a page use-after-free (UAF) scenario. This can occur when tcmu blocks release() frees the page after tcmu try get data page() returns the page pointer. To prevent this, it is necessary to call get page() under cmdr lock to avoid concurrent tcmu blocks release() calls.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-04431
CVE-2022-49053
OESA-2025-1336
OPENSUSE-SU-2025_1195-1
OPENSUSE-SU-2025_1263-1
SUSE-SU-2025:03124-1
SUSE-SU-2025:03126-1
SUSE-SU-2025:03129-1
SUSE-SU-2025:03130-1
SUSE-SU-2025:03133-1
SUSE-SU-2025:03135-1
SUSE-SU-2025:03138-1
SUSE-SU-2025:03156-1
SUSE-SU-2025:03160-1
SUSE-SU-2025:03165-1
SUSE-SU-2025:03175-1
SUSE-SU-2025:03180-1
SUSE-SU-2025:03181-1
SUSE-SU-2025:03185-1
SUSE-SU-2025:03186-1
SUSE-SU-2025:03190-1
SUSE-SU-2025:03191-1
SUSE-SU-2025:03194-1
SUSE-SU-2025:03208-1
SUSE-SU-2025:1176-1
SUSE-SU-2025:1183-1
SUSE-SU-2025:1194-1
SUSE-SU-2025:1195-1
SUSE-SU-2025:1241-1
SUSE-SU-2025:1263-1
SUSE-SU-2025:1293-1
SUSE-SU-2025:4123-1
SUSE-SU-2025_1195-1
SUSE-SU-2025_1241-1
SUSE-SU-2025_1263-1
SUSE-SU-2025_1293-1

Affected Products

Astra Linux
Linux Kernel
Suse